fix ambiguous cert selection in WinRM enable script (#21263)
Rather than trying to guess which cert we just generated, parse the generated cert data and extract the thumbprint directly.
This commit is contained in:
Matt Davis
Trond Hindenes
parent
a6cb377420
commit
ba353b0f8f
1 changed files with 5 additions and 4 deletions
|
|
@ -112,10 +112,11 @@ Function New-LegacySelfSignedCert
|
|||
$certdata = $enrollment.CreateRequest(0)
|
||||
$enrollment.InstallResponse(2, $certdata, 0, "")
|
||||
|
||||
# Return the thumbprint of the last installed certificate;
|
||||
# This is needed for the new HTTPS WinRM listerner we're
|
||||
# going to create further down.
|
||||
Get-ChildItem "Cert:\LocalMachine\my"| Sort-Object NotBefore -Descending | Select -First 1 | Select -Expand Thumbprint
|
||||
# extract/return the thumbprint from the generated cert
|
||||
$parsed_cert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2
|
||||
$parsed_cert.Import([System.Text.Encoding]::UTF8.GetBytes($certdata))
|
||||
|
||||
return $parsed_cert.Thumbprint
|
||||
}
|
||||
|
||||
# Setup error handling.
|
||||
|
|
|
|||
Loading…
Reference in a new issue